dionaea icon indicating copy to clipboard operation
dionaea copied to clipboard
verified publisher icon DinoTools

Use host IP

Open zenire opened this issue 7 years ago • 0 comments

ISSUE TYPE
  • Feature Idea
DIONAEA VERSION
Dionaea Version 0.8.0
Compiled on Linux/ARM at Sep 11 2018 18:59:54 with gcc 5.4.0 20160609
Started on 7aee16fe4d68 running Linux/armv7l release 4.14.50-v7+
CONFIGURATION

listen.mode=getifaddrs listen.use_ipv4_mapped_ipv6=false

ftp activated as service and ihandler

OS / ENVIRONMENT
  • Ubuntu 16.04 (ARM)
SUMMARY

Active FTP works when Dionaea runs in a Docker container, but Passive doesn't.

STEPS TO REPRODUCE

Connect to the FTP service via passive mode.

EXPECTED RESULTS
Opdracht: 	PASV
Antwoord: 	227 Entering Passive Mode (Docker Host IP,189).

Docker Host IP should be the IP of the device which runs docker and hosts the container.

ACTUAL RESULTS
Opdracht: 	PASV
Antwoord: 	227 Entering Passive Mode (172,17,0,3,158,189).

The container IP is being returned. The connecting client can't reach the docker container's IP since it doesn't has a route to it.

SUGGESTION

Create a parameter in dionaea.cfg where you can enter the IP of the docker host. This IP should be returned for passive mode (and maybe at other places for other sensors too).

zenire avatar Sep 12 '18 09:09 zenire